MCPcopy Index your code

hub / github.com/dependency-check/DependencyCheck / functions

Functions3,473 in github.com/dependency-check/DependencyCheck

↓ 1 callersMethodcheckForDeprecatedParameters
()
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:3254
↓ 1 callersMethodcheckForFailure
Checks to see if a vulnerability has been identified with a CVSS score that is above the threshold set in the configuration. @param dependencies the
core/src/main/java/org/owasp/dependencycheck/agent/DependencyCheckScanAgent.java:1028
↓ 1 callersMethodcheckForFailure
(Dependency[] dependencies)
ant/src/main/java/org/owasp/dependencycheck/taskdefs/Check.java:1645
↓ 1 callersMethodcheckForFailure
Checks to see if a vulnerability has been identified with a CVSS score that is above the threshold set in the configuration. @param dependencies the
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:2913
↓ 1 callersMethodcheckHashes
Validates the hashes of the dependency. @param checksums the collection of checksums (md5, sha1, [sha256]) @return Whether all available hashes match
core/src/main/java/org/owasp/dependencycheck/data/artifactory/ArtifactorySearchResponseHandler.java:113
↓ 1 callersMethodcheckState
Checks the state of the custom write lock file and under some conditions will attempt to remove the lock file. @throws WriteLockException thrown if t
core/src/main/java/org/owasp/dependencycheck/utils/WriteLock.java:250
↓ 1 callersMethodcheckUpdate
Checks if the NVD API Cache JSON files were last checked recently. As an optimization, we can avoid repetitive checks against the NVD cache. @return
core/src/main/java/org/owasp/dependencycheck/data/update/NvdApiDataSource.java:482
↓ 1 callersMethodcleanseText
Removes characters from the input text that are not used within the CPE index. @param text is the text to remove the characters from. @return the tex
core/src/main/java/org/owasp/dependencycheck/analyzer/CPEAnalyzer.java:575
↓ 1 callersMethodcleanup
()
core/src/test/java/org/owasp/dependencycheck/analyzer/YarnAuditAnalyzerIT.java:52
↓ 1 callersMethodcleanup
Cleans up resources and unloads any registered database drivers. This needs to be called to ensure the driver is unregistered prior to the finalize me
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/DatabaseManager.java:259
↓ 1 callersMethodcleanupDatabase
It is possible that orphaned rows may be generated during database updates. This should be called after all updates have been completed to ensure orph
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveDB.java:1759
↓ 1 callersMethodclose
Waits for the process and related threads to complete. @throws InterruptedException thrown if the processing threads are interrupted @throws IOExcept
utils/src/main/java/org/owasp/dependencycheck/utils/processing/ProcessReader.java:145
↓ 1 callersMethodclose
Closes the database connection pool.
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/DatabaseManager.java:548
↓ 1 callersMethodclose
Closes the database connection. Close should be called on this object when it is done being used.
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveDB.java:309
↓ 1 callersMethodcloseAnalyzer
Closes a given Analyzer. This will be skipped if the analyzer is disabled. @throws Exception thrown if there is an exception
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractAnalyzer.java:164
↓ 1 callersMethodcloseAnalyzer
The close method deletes any temporary files and directories created during analysis. @throws Exception thrown if there is an exception deleting temp
core/src/main/java/org/owasp/dependencycheck/analyzer/ArchiveAnalyzer.java:226
↓ 1 callersMethodcollectDefinedVariables
Collect defined CMake variables @param contents the version information @return a map referencing identified variables
core/src/main/java/org/owasp/dependencycheck/analyzer/CMakeAnalyzer.java:249
↓ 1 callersMethodcollectDependencies
Scans the projects dependencies including the default (or defined) FileSets. @param engine the core dependency-check engine @param project the projec
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:1816
↓ 1 callersMethodcollectDependencyManagementDependencies
Collect dependencies from the dependency management section. @param engine reference to the ODC engine @param buildingRequest the Maven project build
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:1665
↓ 1 callersMethodcollectMavenDependencies
(Engine engine, MavenProject project, Map<DependencyN
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:1713
↓ 1 callersMethodconfidenceMatches
Checks whether the confidence of the evidence matches this matcher. If our confidence is {@code null} any confidence in the evidence matches. Otherwis
core/src/main/java/org/owasp/dependencycheck/xml/hints/EvidenceMatcher.java:197
↓ 1 callersMethodconfigureFromServer
Configure the credentials in the settings for a certain connection from a settings Server object.<br/> <p> A serverId with username/password will fill
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:2620
↓ 1 callersMethodconfigurePreEmptiveBasicAuth
Configure pre-emptive Basic Auth for the host of the URL. @param theURL The URL to be authenticated by HTTP Basic auth @param theUser
utils/src/main/java/org/owasp/dependencycheck/utils/HC5CredentialHelper.java:85
↓ 1 callersMethodconfigurePreEmptiveBearerAuth
Configure pre-emptive Bearer Auth for the host of the URL. @param theURL The URL to be authenticated by HTTP Bearer auth @param theToken
utils/src/main/java/org/owasp/dependencycheck/utils/HC5CredentialHelper.java:57
↓ 1 callersMethodconfigureServerCredentialsApiKey
Retrieves the server credentials from the settings.xml, decrypts the password, and places the values into the settings under the given key names. This
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:2734
↓ 1 callersMethodconfigureServerCredentialsUserPassOrApiKey
Retrieves the server credentials from the settings.xml, decrypts the password, and places the values into the settings under the given key names with
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:2712
↓ 1 callersMethodconsiderDependencyVersion
Evaluates whether or not to use the `version` of the dependency instead of the version evidence. The dependency should not always be used as it can ca
core/src/main/java/org/owasp/dependencycheck/analyzer/CPEAnalyzer.java:1002
↓ 1 callersMethodcontainsSpecialCharacter
Determines if the string has an unquoted special character. @param value the string to check @return <code>true</code> if the string contains an unqu
core/src/main/java/org/owasp/dependencycheck/dependency/VulnerableSoftware.java:312
↓ 1 callersFunctioncopyToClipboard
()
src/site/resources/js/purl.js:28
↓ 1 callersMethodcountCharacter
Counts the number of occurrences of the character found within the string. @param str the string to check @param c the character to count @return the
core/src/main/java/org/owasp/dependencycheck/xml/suppression/SuppressionRule.java:724
↓ 1 callersMethodcountLines
Counts the lines in a file. Copied from https://stackoverflow.com/a/14411695. @param file the file path @return the count of the lines in the file @t
core/src/test/java/org/owasp/dependencycheck/reporting/ReportGeneratorIT.java:233
↓ 1 callersMethodcountVulns
(Dependency[] dependencies)
core/src/test/java/org/owasp/dependencycheck/reporting/ReportGeneratorIT.java:254
↓ 1 callersMethodcpe
Adds a base CPE object to build a vulnerable software object from. @param cpe the base CPE @return a reference to the builder
core/src/main/java/org/owasp/dependencycheck/dependency/VulnerableSoftwareBuilder.java:96
↓ 1 callersMethodcpeIdentifiersMatch
Returns true if the CPE identifiers in the two supplied dependencies are equal. @param dependency1 a dependency2 to compare @param dependency2 a depe
core/src/main/java/org/owasp/dependencycheck/analyzer/DependencyBundlingAnalyzer.java:289
↓ 1 callersMethodcreateCommandLineOptions
Generates an Options collection that is used to parse the command line and to display the help message. @return the command line options used for par
cli/src/main/java/org/owasp/dependencycheck/CliParser.java:304
↓ 1 callersMethodcreateContext
Constructs the velocity context used to generate the dependency-check reports. @param applicationName the application name being analyzed @param grou
core/src/main/java/org/owasp/dependencycheck/reporting/ReportGenerator.java:250
↓ 1 callersMethodcreateDependency
(final String vendor, final String name, final String version)
core/src/test/java/org/owasp/dependencycheck/agent/DependencyCheckScanAgentIT.java:76
↓ 1 callersMethodcreateDependency
Builds a dependency object based on the given data. @param parentDependency a reference to the parent dependency @param name the name of the dependen
core/src/main/java/org/owasp/dependencycheck/data/golang/GoModDependency.java:109
↓ 1 callersMethodcreateDependency
(Dependency parentDependency, String packageName, String version)
core/src/main/java/org/owasp/dependencycheck/processing/MixAuditProcessor.java:153
↓ 1 callersMethodcreateDependencyForGem
Creates the dependency based off of the gem. @param engine the engine used for scanning @param gemFile the gem file @param parentName the gem parent
core/src/main/java/org/owasp/dependencycheck/processing/BundlerAuditProcessor.java:315
↓ 1 callersMethodcreateIndex
(Analyzer analyzer, Directory index)
core/src/test/java/org/owasp/dependencycheck/data/lucene/FieldAnalyzerTest.java:118
↓ 1 callersMethodcreateNexusSearchOrDisable
Creates a NexusSearch for the appropriate Nexus version (Nexus V2 and V3 supported). <p> If errors are encountered creating or validating the NexusSea
core/src/main/java/org/owasp/dependencycheck/analyzer/NexusAnalyzer.java:189
↓ 1 callersMethodcreateParentFile
Ensures the parent path is correctly created on disk so that the file can be extracted to the correct location. @param file the file path @throws Ext
core/src/main/java/org/owasp/dependencycheck/utils/ExtractionUtil.java:319
↓ 1 callersMethodcreateProjectReferenceName
@param project the {@link MavenProject} @param dependencyNode the {@link DependencyNode} @return the name to be used when creating a {@link Dependency
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:1799
↓ 1 callersMethodcreateScanAgent
()
core/src/test/java/org/owasp/dependencycheck/agent/DependencyCheckScanAgentIT.java:62
↓ 1 callersMethodcreateTables
Creates the database structure (tables and indexes) to store the CVE data. @param conn the database connection @throws DatabaseException thrown if th
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/DatabaseManager.java:371
↓ 1 callersMethodcreateThread
(Settings settings, URL url)
utils/src/main/java/org/owasp/dependencycheck/utils/scarf/TelemetryCollector.java:76
↓ 1 callersMethodcreateVelocityEngine
Creates a new Velocity Engine. @return a velocity engine
core/src/main/java/org/owasp/dependencycheck/reporting/ReportGenerator.java:304
↓ 1 callersMethodcreateVulnerability
Creates a vulnerability. @param parentName the parent name @param dependency the dependency @param gem the gem name @param nextLine the line to parse
core/src/main/java/org/owasp/dependencycheck/processing/BundlerAuditProcessor.java:266
↓ 1 callersMethodcreateVulnerability
(MixAuditResult result)
core/src/main/java/org/owasp/dependencycheck/processing/MixAuditProcessor.java:185
↓ 1 callersMethoddataExists
Checks to see if data exists so that analysis can be performed. @return <code>true</code> if data exists; otherwise <code>false</code>
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveDB.java:1730
↓ 1 callersMethoddealWithReferences
()
ant/src/main/java/org/owasp/dependencycheck/taskdefs/Check.java:504
↓ 1 callersMethoddefrag
If the database is using an H2 file based database calling <code>defrag()</code> will de-fragment the database.
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveDB.java:1806
↓ 1 callersMethoddeleteCachedFile
(final File repo)
core/src/main/java/org/owasp/dependencycheck/data/update/HostedSuppressionsDataSource.java:163
↓ 1 callersMethoddeleteVulnerability
Used when updating a vulnerability - in some cases a CVE needs to be removed. @param cve the vulnerability CVE @throws SQLException thrown if there i
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveDB.java:1441
↓ 1 callersMethoddetermineDatabaseProductName
Tries to determine the product name of the database. @param conn the database connection @return the product name of the database if successful, {@co
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/DatabaseManager.java:242
↓ 1 callersMethoddetermineReturnCode
Determines the return code based on if one of the dependencies scanned has a vulnerability with a CVSS score above the cvssFailScore. @param engine t
cli/src/main/java/org/owasp/dependencycheck/App.java:305
↓ 1 callersMethoddetermineScore
(Vulnerability vuln)
core/src/main/java/org/owasp/dependencycheck/reporting/ReportTool.java:111
↓ 1 callersMethoddetermineSuppressions
Combines the configured suppressionFile and suppressionFiles into a single array. @return an array of suppression file paths
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:2768
↓ 1 callersMethodecosystemIs
Determine if the dependency ecosystem is equal in the given dependencies. @param ecoSystem the ecosystem to validate against @param dependency a depe
core/src/main/java/org/owasp/dependencycheck/analyzer/DependencyBundlingAnalyzer.java:584
↓ 1 callersMethodecosystemMatchesTargetSoftware
Determines if the target software matches the given ecosystem. Currently, this is very Node JS specific and broadly returns matches for everything els
core/src/main/java/org/owasp/dependencycheck/analyzer/NvdCveAnalyzer.java:187
↓ 1 callersMethodenrich
Attempt to enrich given dependency with vulnerability details from OSS Index component-report. @param dependency the dependency to enrich
core/src/main/java/org/owasp/dependencycheck/analyzer/OssIndexAnalyzer.java:315
↓ 1 callersMethodensureDBExists
()
core/src/test/java/org/owasp/dependencycheck/BaseDBTestCase.java:57
↓ 1 callersMethodensureDataExists
Checks the CPE Index to ensure documents exists. If none exist a NoDataException is thrown. @throws NoDataException thrown if no data exists in the C
core/src/main/java/org/owasp/dependencycheck/Engine.java:1142
↓ 1 callersMethodensureLock
(File parent)
core/src/main/java/org/owasp/dependencycheck/analyzer/PoetryAnalyzer.java:232
↓ 1 callersMethodensureParentDirectoryExists
Validates that the given file's parent directory exists. If the directory does not exist an attempt to create the necessary path is made; if that fail
core/src/main/java/org/owasp/dependencycheck/reporting/ReportGenerator.java:481
↓ 1 callersMethodensureReadableJar
Checks if the file being scanned is a JAR or WAR that begins with '#!/bin' which indicates it is a fully executable jar. If a fully executable JAR is
core/src/main/java/org/owasp/dependencycheck/analyzer/ArchiveAnalyzer.java:533
↓ 1 callersMethodensureSchemaVersion
Uses the provided connection to check the specified schema version within the database. @param conn the database connection object @throws DatabaseEx
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/DatabaseManager.java:488
↓ 1 callersMethodequals
(Object obj)
core/src/main/java/org/owasp/dependencycheck/dependency/EvidenceCollection.java:400
↓ 1 callersMethodequalsIgnoreCaseAndNonAlpha
Compares two strings after lower casing them and removing the non-alpha characters. @param l string one to compare. @param r string two to compare. @
core/src/main/java/org/owasp/dependencycheck/analyzer/CPEAnalyzer.java:605
↓ 1 callersMethoderror
(String msg)
ant/src/main/java/org/owasp/dependencycheck/ant/logging/AntLoggerAdapter.java:387
↓ 1 callersMethoderrorMessage
(Exception ex)
core/src/main/java/org/owasp/dependencycheck/analyzer/OssIndexAnalyzer.java:296
↓ 1 callersMethodestimatedSortAdjustedCVSSv3
Creates an estimated sort-adjusted CVSSv3 score for an unscored textual severity. For recognized severities below critical it returns a value at the l
core/src/main/java/org/owasp/dependencycheck/utils/SeverityUtil.java:133
↓ 1 callersMethodevaluateDependencies
Evaluates the dependencies @param dependency a dependency to compare @param nextDependency a dependency to compare @param dependenciesToRemove a set
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractDependencyComparingAnalyzer.java:116
↓ 1 callersMethodexecuteDependencyCheck
Executes the Dependency-Check on the dependent libraries. <b>Note</b>, the engine object returned from this method must be closed by calling `close()`
core/src/main/java/org/owasp/dependencycheck/agent/DependencyCheckScanAgent.java:889
↓ 1 callersMethodexecuteWithContextClassloader
()
ant/src/main/java/org/owasp/dependencycheck/taskdefs/Purge.java:150
↓ 1 callersMethodexistingNvdVuln
(String cve)
core/src/test/java/org/owasp/dependencycheck/analyzer/RetireJsLibraryTest.java:201
↓ 1 callersMethodexpectedAzureIdentityProductEvidences
()
core/src/test/java/org/owasp/dependencycheck/analyzer/AssemblyAnalyzerTest.java:264
↓ 1 callersMethodexpectedAzureIdentityVendorEvidences
()
core/src/test/java/org/owasp/dependencycheck/analyzer/AssemblyAnalyzerTest.java:279
↓ 1 callersMethodexpectedAzureIdentityVersionEvidences
()
core/src/test/java/org/owasp/dependencycheck/analyzer/AssemblyAnalyzerTest.java:257
↓ 1 callersMethodextractAndAnalyze
Extracts the contents of the archive dependency and scans for additional dependencies. @param dependency the dependency being analyzed @param engine
core/src/main/java/org/owasp/dependencycheck/analyzer/ArchiveAnalyzer.java:292
↓ 1 callersMethodextractArchive
Extracts files from an archive. @param input the archive to extract files from @param destination the location to write the files too @param filter d
core/src/main/java/org/owasp/dependencycheck/utils/ExtractionUtil.java:236
↓ 1 callersMethodextractConfigureScriptEvidence
Extracts evidence from the configuration. @param dependency the dependency being analyzed @param name the name of the source of evidence @param conte
core/src/main/java/org/owasp/dependencycheck/analyzer/AutoconfAnalyzer.java:189
↓ 1 callersMethodextractDescription
Extracts the english description from the CVE object. @param cve the CVE data @return the English descriptions from the CVE object
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveItemOperator.java:62
↓ 1 callersMethodextractEcosystem
Attempts to determine the ecosystem based on the vendor, product and targetSw. @param baseEcosystem the base ecosystem @param vendor the vendor @para
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveItemOperator.java:78
↓ 1 callersMethodextractFile
Extracts a file from an archive (input stream) and correctly builds the directory structure. @param input the archive input stream @param destination
core/src/main/java/org/owasp/dependencycheck/utils/ExtractionUtil.java:280
↓ 1 callersMethodextractFiles
Extracts the contents of an archive into the specified directory. @param archive an archive file such as a WAR or EAR @param destination a directory
core/src/main/java/org/owasp/dependencycheck/analyzer/ArchiveAnalyzer.java:427
↓ 1 callersMethodextractGhsaId
(String url)
core/src/main/java/org/owasp/dependencycheck/analyzer/YarnAuditAnalyzer.java:439
↓ 1 callersMethodextractGrokAssembly
Extracts the GrokAssembly executable. @return the path to the extracted executable @throws InitializationException thrown if the executable could not
core/src/main/java/org/owasp/dependencycheck/analyzer/AssemblyAnalyzer.java:400
↓ 1 callersMethodextractLicense
Extracts the license information from the pom and adds it to the dependency. @param pom the pom object @param dependency the dependency to add licens
core/src/main/java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java:1310
↓ 1 callersMethodextractLicense
Extracts the content of the license file into the dependency's license field. @param dependency the dependency being analyzed @param file the license
core/src/main/java/org/owasp/dependencycheck/data/golang/GoModDependency.java:192
↓ 1 callersMethodextractPom
Retrieves the specified POM from a jar. @param path the path to the pom.xml file within the jar file @param jar the jar file to extract the pom from
core/src/main/java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java:560
↓ 1 callersMethodfetchHostedSuppressions
Fetches the hosted suppressions file @param settings a reference to the dependency-check settings @param repoUrl the URL to the hosted suppressions f
core/src/main/java/org/owasp/dependencycheck/data/update/HostedSuppressionsDataSource.java:129
↓ 1 callersMethodfetchPnpmAuditJson
(Dependency dependency, boolean skipDevDependencies)
core/src/main/java/org/owasp/dependencycheck/analyzer/PnpmAuditAnalyzer.java:195
↓ 1 callersMethodfetchYarnAdvisories
(Dependency dependency, boolean skipDevDependencies)
core/src/main/java/org/owasp/dependencycheck/analyzer/YarnAuditAnalyzer.java:347
↓ 1 callersMethodfetchYarnAuditJson
(File dependencyDirectory, boolean skipDevDependencies)
core/src/main/java/org/owasp/dependencycheck/analyzer/YarnAuditAnalyzer.java:257
↓ 1 callersMethodfileNameMatch
Returns true if the file names (and version if it exists) of the two dependencies are sufficiently similar. @param dependency1 a dependency2 to compa
core/src/main/java/org/owasp/dependencycheck/analyzer/DependencyBundlingAnalyzer.java:255
↓ 1 callersMethodfilter
Determines whether a suppression rule should be retained when filtering a set of suppression rules for a concrete suppression analyzer. @param rule t
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractSuppressionAnalyzer.java:140
↓ 1 callersMethodfilterEcosystem
Filters the given list of CPE Entries (plus ecosystem) for the given dependencies ecosystem. @param ecosystem the dependencies ecosystem @param entri
core/src/main/java/org/owasp/dependencycheck/analyzer/CPEAnalyzer.java:1078
↓ 1 callersMethodfilterEcosystem
Filters the list of vulnerabilities for the given ecosystem compared to the target software from the NVD. @param ecosystem the dependency's ecosystem
core/src/main/java/org/owasp/dependencycheck/analyzer/NvdCveAnalyzer.java:151
← previousnext →1,001–1,100 of 3,473, ranked by callers